Vulnerabilities > Google > Android > 2.2.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-30 | CVE-2023-21366 | Unspecified vulnerability in Google Android In Scudo, there is a possible way for an attacker to predict heap allocation patterns due to insecure implementation/design. | 5.5 |
| 2023-10-30 | CVE-2023-21367 | Unspecified vulnerability in Google Android In Scudo, there is a possible way to exploit certain heap OOB read/write issues due to an insecure implementation/design. | 5.5 |
| 2023-10-30 | CVE-2023-21368 | Out-of-bounds Read vulnerability in Google Android In Audio, there is a possible out of bounds read due to missing bounds check. | 5.5 |
| 2023-10-30 | CVE-2023-21369 | Unspecified vulnerability in Google Android In Usage Access, there is a possible way to display a Settings usage access restriction toggle screen due to a permissions bypass. | 5.5 |
| 2023-10-30 | CVE-2023-21370 | Integer Overflow or Wraparound vulnerability in Google Android In the Security Element API, there is a possible out of bounds write due to an integer overflow. | 6.7 |
| 2023-10-30 | CVE-2023-21371 | Integer Overflow or Wraparound vulnerability in Google Android In Secure Element, there is a possible out of bounds write due to an integer overflow. | 6.7 |
| 2022-12-08 | CVE-2022-39912 | Improper Handling of Exceptional Conditions vulnerability in Google Android Improper handling of insufficient permissions vulnerability in setSecureFolderPolicy in PersonaManagerService prior to Android T(13) allows local attackers to set some setting value in Secure folder. | 3.3 |
| 2022-12-08 | CVE-2022-39913 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information to an Unauthorized Actor in Persona Manager prior to Android T(13) allows local attacker to access user profiles information. | 3.3 |
| 2022-12-08 | CVE-2022-39914 | Incorrect Authorization vulnerability in Google Android Exposure of Sensitive Information from an Unauthorized Actor vulnerability in Samsung DisplayManagerService prior to Android T(13) allows local attacker to access connected DLNA device information. | 3.3 |
| 2022-03-04 | CVE-2022-23729 | Improper Authentication vulnerability in Google Android When the device is in factory state, it can be access the shell without adb authentication process. | 6.9 |